Overview of QRadar Vulnerability Manager

IBM® QRadar® Vulnerability Manager is a network scanning platform that detects vulnerabilities within the applications, systems, and devices on your network or within your DMZ.

QRadar Vulnerability Manager uses security intelligence to help you manage and prioritize your network vulnerabilities. For example, you can use QRadar Vulnerability Manager to continuously monitor vulnerabilities, improve resource configuration, and identify software patches. You can also, prioritize security gaps by correlating vulnerability data with network flows, log data, firewall, and intrusion prevention system (IPS) data.

You can maintain real-time visibility of the vulnerabilities that are detected by the built-in QRadar Vulnerability Manager scanner and other third-party scanners. Third-party scanners are integrated with QRadar and include HCL BigFix®, Guardium®, AppScan®, Nessus, nCircle, and Rapid 7.


Upon deployment, the QRadar Vulnerability Manager automatically updates the default BB:Host Definition: VA Scanner Source IP building block to include the locations of all QVM processors. This behavior is by design.

To manually add to this building block, add a new source IP Test Group with new IP addresses.

Unless otherwise noted, all references to QRadar Vulnerability Manager refer to IBM QRadar Vulnerability Manager. All references to QRadar refer to IBM QRadar SIEM and IBM QRadar Log Manager and all references to SiteProtector refer to IBM Security SiteProtector.